Merge changes Ia719fce3,If1a64a93,I90b025f5,I54449898,I32b7b585 into udc-dev am: 43d2a6cf

/*

 * Copyright (C) 2023 The Android Open Source Project

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *      http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 */

package com.android.systemui.authentication

import com.android.systemui.authentication.data.repository.AuthenticationRepositoryModule

import dagger.Module

@Module(

    includes =

        [

            AuthenticationRepositoryModule::class,

        ],

)

object AuthenticationModule

/*

 * Copyright (C) 2023 The Android Open Source Project

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *      http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 */

package com.android.systemui.authentication.data.repository

import com.android.systemui.authentication.shared.model.AuthenticationMethodModel

import dagger.Binds

import dagger.Module

import javax.inject.Inject

import kotlinx.coroutines.flow.MutableStateFlow

import kotlinx.coroutines.flow.StateFlow

import kotlinx.coroutines.flow.asStateFlow

/** Defines interface for classes that can access authentication-related application state. */

interface AuthenticationRepository {

    /**

     * Whether the device is unlocked.

     *

     * A device that is not yet unlocked requires unlocking by completing an authentication

     * challenge according to the current authentication method.

     *

     * Note that this state has no real bearing on whether the lock screen is showing or dismissed.

     */

    val isUnlocked: StateFlow<Boolean>

    /**

     * The currently-configured authentication method. This determines how the authentication

     * challenge is completed in order to unlock an otherwise locked device.

     */

    val authenticationMethod: StateFlow<AuthenticationMethodModel>

    /**

     * Whether lock screen bypass is enabled. When enabled, the lock screen will be automatically

     * dismisses once the authentication challenge is completed. For example, completing a biometric

     * authentication challenge via face unlock or fingerprint sensor can automatically bypass the

     * lock screen.

     */

    val isBypassEnabled: StateFlow<Boolean>

    /** See [isUnlocked]. */

    fun setUnlocked(isUnlocked: Boolean)

    /** See [authenticationMethod]. */

    fun setAuthenticationMethod(authenticationMethod: AuthenticationMethodModel)

    /** See [isBypassEnabled]. */

    fun setBypassEnabled(isBypassEnabled: Boolean)

}

class AuthenticationRepositoryImpl @Inject constructor() : AuthenticationRepository {

    // TODO(b/280883900): get data from real data sources in SysUI.

    private val _isUnlocked = MutableStateFlow(false)

    override val isUnlocked: StateFlow<Boolean> = _isUnlocked.asStateFlow()

    private val _authenticationMethod =

        MutableStateFlow<AuthenticationMethodModel>(AuthenticationMethodModel.PIN(1234))

    override val authenticationMethod: StateFlow<AuthenticationMethodModel> =

        _authenticationMethod.asStateFlow()

    private val _isBypassEnabled = MutableStateFlow(false)

    override val isBypassEnabled: StateFlow<Boolean> = _isBypassEnabled.asStateFlow()

    override fun setUnlocked(isUnlocked: Boolean) {

        _isUnlocked.value = isUnlocked

    }

    override fun setBypassEnabled(isBypassEnabled: Boolean) {

        _isBypassEnabled.value = isBypassEnabled

    }

    override fun setAuthenticationMethod(authenticationMethod: AuthenticationMethodModel) {

        _authenticationMethod.value = authenticationMethod

    }

}

@Module

interface AuthenticationRepositoryModule {

    @Binds fun repository(impl: AuthenticationRepositoryImpl): AuthenticationRepository

}

/*

 * Copyright (C) 2023 The Android Open Source Project

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *      http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 */

package com.android.systemui.authentication.domain.interactor

import com.android.systemui.authentication.data.repository.AuthenticationRepository

import com.android.systemui.authentication.shared.model.AuthenticationMethodModel

import com.android.systemui.dagger.SysUISingleton

import com.android.systemui.dagger.qualifiers.Application

import javax.inject.Inject

import kotlinx.coroutines.CoroutineScope

import kotlinx.coroutines.flow.SharingStarted

import kotlinx.coroutines.flow.StateFlow

import kotlinx.coroutines.flow.combine

import kotlinx.coroutines.flow.stateIn

import kotlinx.coroutines.launch

/** Hosts application business logic related to authentication. */

@SysUISingleton

class AuthenticationInteractor

@Inject

constructor(

    @Application applicationScope: CoroutineScope,

    private val repository: AuthenticationRepository,

) {

    /**

     * The currently-configured authentication method. This determines how the authentication

     * challenge is completed in order to unlock an otherwise locked device.

     */

    val authenticationMethod: StateFlow<AuthenticationMethodModel> = repository.authenticationMethod

    /**

     * Whether the device is unlocked.

     *

     * A device that is not yet unlocked requires unlocking by completing an authentication

     * challenge according to the current authentication method.

     *

     * Note that this state has no real bearing on whether the lock screen is showing or dismissed.

     */

    val isUnlocked: StateFlow<Boolean> =

        combine(authenticationMethod, repository.isUnlocked) { authMethod, isUnlocked ->

                isUnlockedWithAuthMethod(

                    isUnlocked = isUnlocked,

                    authMethod = authMethod,

                )

            }

            .stateIn(

                scope = applicationScope,

                started = SharingStarted.Eagerly,

                initialValue =

                    isUnlockedWithAuthMethod(

                        isUnlocked = repository.isUnlocked.value,

                        authMethod = repository.authenticationMethod.value,

                    )

            )

    /**

     * Whether lock screen bypass is enabled. When enabled, the lock screen will be automatically

     * dismisses once the authentication challenge is completed. For example, completing a biometric

     * authentication challenge via face unlock or fingerprint sensor can automatically bypass the

     * lock screen.

     */

    val isBypassEnabled: StateFlow<Boolean> = repository.isBypassEnabled

    init {

        // UNLOCKS WHEN AUTH METHOD REMOVED.

        //

        // Unlocks the device if the auth method becomes None.

        applicationScope.launch {

            repository.authenticationMethod.collect {

                if (it is AuthenticationMethodModel.None) {

                    unlockDevice()

                }

            }

        }

    }

    /**

     * Returns `true` if the device currently requires authentication before content can be viewed;

     * `false` if content can be displayed without unlocking first.

     */

    fun isAuthenticationRequired(): Boolean {

        return !isUnlocked.value && authenticationMethod.value.isSecure

    }

    /**

     * Unlocks the device, assuming that the authentication challenge has been completed

     * successfully.

     */

    fun unlockDevice() {

        repository.setUnlocked(true)

    }

    /**

     * Locks the device. From now on, the device will remain locked until [authenticate] is called

     * with the correct input.

     */

    fun lockDevice() {

        repository.setUnlocked(false)

    }

    /**

     * Attempts to authenticate the user and unlock the device.

     *

     * @param input The input from the user to try to authenticate with. This can be a list of

     *   different things, based on the current authentication method.

     * @return `true` if the authentication succeeded and the device is now unlocked; `false`

     *   otherwise.

     */

    fun authenticate(input: List<Any>): Boolean {

        val isSuccessful =

            when (val authMethod = this.authenticationMethod.value) {

                is AuthenticationMethodModel.PIN -> input.asCode() == authMethod.code

                is AuthenticationMethodModel.Password -> input.asPassword() == authMethod.password

                is AuthenticationMethodModel.Pattern -> input.asPattern() == authMethod.coordinates

                else -> true

            }

        if (isSuccessful) {

            repository.setUnlocked(true)

        }

        return isSuccessful

    }

    /** Triggers a biometric-powered unlock of the device. */

    fun biometricUnlock() {

        // TODO(b/280883900): only allow this if the biometric is enabled and there's a match.

        repository.setUnlocked(true)

    }

    /** See [authenticationMethod]. */

    fun setAuthenticationMethod(authenticationMethod: AuthenticationMethodModel) {

        repository.setAuthenticationMethod(authenticationMethod)

    }

    /** See [isBypassEnabled]. */

    fun toggleBypassEnabled() {

        repository.setBypassEnabled(!repository.isBypassEnabled.value)

    }

    companion object {

        private fun isUnlockedWithAuthMethod(

            isUnlocked: Boolean,

            authMethod: AuthenticationMethodModel,

        ): Boolean {

            return if (authMethod is AuthenticationMethodModel.None) {

                true

            } else {

                isUnlocked

            }

        }

        /**

         * Returns a PIN code from the given list. It's assumed the given list elements are all

         * [Int].

         */

        private fun List<Any>.asCode(): Int? {

            if (isEmpty()) {

                return null

            }

            var code = 0

            map { it as Int }.forEach { integer -> code = code * 10 + integer }

            return code

        }

        /**

         * Returns a password from the given list. It's assumed the given list elements are all

         * [Char].

         */

        private fun List<Any>.asPassword(): String {

            val anyList = this

            return buildString { anyList.forEach { append(it as Char) } }

        }

        /**

         * Returns a list of [AuthenticationMethodModel.Pattern.PatternCoordinate] from the given

         * list. It's assumed the given list elements are all

         * [AuthenticationMethodModel.Pattern.PatternCoordinate].

         */

        private fun List<Any>.asPattern():

            List<AuthenticationMethodModel.Pattern.PatternCoordinate> {

            val anyList = this

            return buildList {

                anyList.forEach { add(it as AuthenticationMethodModel.Pattern.PatternCoordinate) }

            }

        }

    }

}

/*

 * Copyright (C) 2023 The Android Open Source Project

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *      http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 */

package com.android.systemui.authentication.shared.model

/** Enumerates all known authentication methods. */

sealed class AuthenticationMethodModel(

    /**

     * Whether the authentication method is considered to be "secure".

     *

     * "Secure" authentication methods require authentication to unlock the device. Non-secure auth

     * methods simply require user dismissal.

     */

    open val isSecure: Boolean,

) {

    /** There is no authentication method on the device. We shouldn't even show the lock screen. */

    object None : AuthenticationMethodModel(isSecure = false)

    /** The most basic authentication method. The lock screen can be swiped away when displayed. */

    object Swipe : AuthenticationMethodModel(isSecure = false)

    data class PIN(val code: Int) : AuthenticationMethodModel(isSecure = true)

    data class Password(val password: String) : AuthenticationMethodModel(isSecure = true)

    data class Pattern(val coordinates: List<PatternCoordinate>) :

        AuthenticationMethodModel(isSecure = true) {

        data class PatternCoordinate(

            val x: Int,

            val y: Int,

        )

    }

}

/*

 * Copyright (C) 2023 The Android Open Source Project

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *      http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 */

package com.android.systemui.bouncer.data.repo

import com.android.systemui.dagger.SysUISingleton

import javax.inject.Inject

import kotlinx.coroutines.flow.MutableStateFlow

import kotlinx.coroutines.flow.StateFlow

import kotlinx.coroutines.flow.asStateFlow

/** Provides access to bouncer-related application state. */

@SysUISingleton

class BouncerRepository @Inject constructor() {

    private val _message = MutableStateFlow<String?>(null)

    /** The user-facing message to show in the bouncer. */

    val message: StateFlow<String?> = _message.asStateFlow()

    fun setMessage(message: String?) {

        _message.value = message

    }

}